CVE-2025-45007

Severity CVSS v4.0:
Pending analysis
Type:
CWE-79 Cross-Site Scripting (XSS)
Publication date:
30/04/2025
Last modified:
09/05/2025

Description

A Reflected Cross-Site Scripting (XSS) vulnerability was discovered in the profile.php file of PHPGurukul Timetable Generator System v1.0. This vulnerability allows remote attackers to execute arbitrary JavaScript code via the adminname POST request parameter.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:phpgurukul:time_table_generator_system:1.0:*:*:*:*:*:*:*